Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/7a6e21-d40b-4eeb-b3cb-00ed90269bb4/1/xZqmEjytnmUkbg4CbUYuimlKhPU.roa
File: xZqmEjytnmUkbg4CbUYuimlKhPU.roa (raw, json)
Hash identifier: e3pNJzycgznjkbsjh8mO/amgXrm2lmZj6l8zsaczyRY=
Subject key identifier: C5:9A:A6:12:3C:AD:9E:65:24:6E:0E:02:6D:46:2E:8A:69:4A:84:F5
Certificate issuer: /CN=9d8f112756f1458dcf3e387a4be890f30ea949b3
Certificate serial: 094DDB27
Authority key identifier: 9D:8F:11:27:56:F1:45:8D:CF:3E:38:7A:4B:E8:90:F3:0E:A9:49:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nY8RJ1bxRY3PPjh6S-iQ8w6pSbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/7a6e21-d40b-4eeb-b3cb-00ed90269bb4/1/xZqmEjytnmUkbg4CbUYuimlKhPU.roa
Signing time: Sat 01 Jan 2022 06:58:30 +0000
ROA not before: Sat 01 Jan 2022 06:58:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60243
IP address blocks: 185.34.49.0/24 maxlen: 24
185.34.50.0/24 maxlen: 24
185.34.48.0/24 maxlen: 24
185.34.51.0/24 maxlen: 24
2a04:5e80::/32 maxlen: 32
2a04:5e86::/32 maxlen: 32
2a04:5e85::/32 maxlen: 32
2a04:5e82::/32 maxlen: 32
2a04:5e81::/32 maxlen: 32
2a04:5e83::/32 maxlen: 32
2a04:5e84::/32 maxlen: 32
2a04:5e87::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156097319 (0x94ddb27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d8f112756f1458dcf3e387a4be890f30ea949b3
Validity
Not Before: Jan 1 06:58:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c59aa6123cad9e65246e0e026d462e8a694a84f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b8:82:c7:50:6c:80:65:d1:56:6a:79:bd:4e:
f7:b5:4c:ba:75:5e:1a:91:9b:cd:f2:c9:66:b7:d6:
d1:53:14:26:79:fd:c4:42:24:f0:81:bb:7e:6b:eb:
54:3c:d4:d6:a1:bf:9e:67:e5:e2:62:7f:8f:83:8c:
ed:51:fb:97:16:8b:80:26:8e:02:ce:76:31:1f:b7:
1b:81:f8:76:7f:0f:83:a0:65:2b:5d:f3:d6:e7:02:
c3:1d:27:3f:b3:b4:5b:e8:00:09:b4:17:ce:2d:d9:
3f:e0:71:a2:6e:93:59:48:b4:32:53:4f:61:e8:7c:
a9:e4:60:34:2d:93:a7:65:1b:3b:ce:9c:c2:9f:a6:
77:ba:6d:49:05:5c:53:c0:45:b7:33:75:ec:ca:82:
67:95:10:1f:39:57:3a:01:30:02:6e:f0:b5:a1:4b:
79:89:0a:8e:e4:6e:da:1b:90:7b:1c:5e:0c:e4:e1:
8d:31:77:4f:82:e8:8f:4c:8f:b2:8f:05:6f:6d:81:
09:9c:c4:d5:39:91:00:7b:96:e7:da:e5:d0:5f:91:
c0:ca:f3:b8:e1:35:f5:13:7a:43:b7:57:65:ea:63:
e0:3f:92:43:72:43:00:f0:79:b0:8e:69:ff:d2:09:
50:15:c2:d3:4c:9e:63:7f:1b:82:35:6c:f8:c3:5b:
39:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:9A:A6:12:3C:AD:9E:65:24:6E:0E:02:6D:46:2E:8A:69:4A:84:F5
X509v3 Authority Key Identifier:
keyid:9D:8F:11:27:56:F1:45:8D:CF:3E:38:7A:4B:E8:90:F3:0E:A9:49:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nY8RJ1bxRY3PPjh6S-iQ8w6pSbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/7a6e21-d40b-4eeb-b3cb-00ed90269bb4/1/xZqmEjytnmUkbg4CbUYuimlKhPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/7a6e21-d40b-4eeb-b3cb-00ed90269bb4/1/nY8RJ1bxRY3PPjh6S-iQ8w6pSbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.48.0/22
IPv6:
2a04:5e80::/29
Signature Algorithm: sha256WithRSAEncryption
51:dc:80:b8:ec:a2:51:e9:6b:5a:79:ce:a4:68:c6:49:26:cf:
89:f8:37:3d:95:c0:df:7d:53:5f:f8:25:e2:b8:87:51:8d:b5:
17:92:1c:4d:b8:55:95:fa:cf:49:63:6d:66:d6:03:18:0d:9c:
cd:ff:79:fb:bc:6e:cf:4a:5c:4e:22:6a:f3:ab:c3:51:c3:be:
98:0c:16:e9:a9:95:fd:4d:14:e5:8d:39:b1:74:72:ae:27:7b:
b1:51:a7:5e:0a:9c:24:49:c7:41:d8:5e:ff:29:98:2c:9c:6f:
71:ba:77:63:c6:49:4c:3d:1e:9b:d7:9c:11:4c:e6:4d:f7:45:
64:8b:f6:24:2f:07:b9:7d:18:09:46:b6:4c:6c:d5:80:a5:bb:
d3:5b:a7:09:8c:27:45:e1:b0:15:ff:1c:77:b4:7e:77:21:de:
4c:cd:39:40:4b:68:39:cd:4c:90:aa:78:18:fe:2a:e2:76:ee:
65:dd:ef:18:af:c1:53:7d:8e:7e:7c:75:cf:9d:06:0e:fb:8f:
99:31:be:2c:01:ae:d1:e8:94:b0:19:30:8f:bb:a8:c5:e6:99:
63:50:bf:53:17:d0:33:00:9c:80:2d:d3:e2:0d:1f:17:95:56:
51:eb:4c:92:e0:22:e6:57:e5:4d:48:b0:6f:11:2b:a8:79:1f:
27:33:16:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:45 2024 by rpki-client on console-ams.rpki-client.org